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AMENDMENTS TO THE CLAIMS 
Please reinstate Claims 3, 15, and 27 due to an error in the April 20, 2004, Advisory 
Action. 

Please amend Claims 1, 5, 6, 13, 17, 18, 25, 29, and 30, as follows: 



1 1 . (currently amended) A method of securely invoking an access control function, 

2 the method comprising the steps of: 

3 receiving a digital signature for the access control fiinction; 

4 generating a mapping of the access control function to the digital signature; 

5 determining that the digital signature is mapped to the access control function 

6 ^ based on the mapping when execution of the access control function is 

7 requested; 

8 generating a digital signature for a retrieved executable element; 

9 determining whether an the executable element matches the access control 

1 0 function bas e d on th e by comparing the digital signature of the executable 

11 element and the digital signature for the access control function ; 

12 executing the executable element only when the executable element matches the 

13 access control function; 

14 wherein a particular class defines an implementation of the access control 

1 5 function; and 

16 returning data to a caller of the executable element after executing the executable 

17 element. 

18 wh e r e in th e m e thod furth e r includ e s th e st e p of d e t e cting that an acc e ss control 

19 e v e nt has occurr e d; and 
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20 r o trioving th e e xecutabl e e l e m e nt in r e spons e to d e t e cting that th e e v e nt has 

21 occurr e d. 

1 2. (previously amended) The method of Claim 1 , 

2 wherein the step of receiving a digital signature includes the step of receiving a 

3 digital signature for the particular class; and 

4 wherein the step of generating a mapping includes generating a mapping between 

5 the particular class and the digital signature. 

1 3. (original) The method of Claim 1, 

2 wherein the method further includes the step of detecting that an access control 

3 event has occurred; and 

4 retrieving the executable element in response to detecting that the event has 

5 occurred. 

1 4. (original) The method of Claim 3, 

2 wherein the method further includes the steps of: 

3 generating a mapping between the access control event and the access , 

4 control function; 

5 determining that the access control event is mapped to the access control 

6 function; and 

7 wherein the step of retrieving the executable element is performed in response to 

8 determining that the access control event is mapped to the access control 

9 function. 

1 5. (currently amended) The method of Claim [[4]] i, wherein the step of returning 

2 data further includesing the st e p of the executable element returning name-value 

3 pairs. 
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1 6. (currently amended) The method of Claim [[5]] 1, wherein the step of returning 

2 data th e e x e cutabl e e l e m e nt r e turning nam e valu e pairs includes the executable 

3 element returning a hash table that contains the name-value pairs. 

1 7. (original) The method of Claim 1, wherein the method further includes the 

2 steps of: 

3 generating a mapping of a plurality of access control functions to digital 

4 signatures, wherein the plurality of access control functions include the 

5 access control function, wherein one or more classes define an 

6 implementation for each of the plurality of access control functions; and 

7 wherein each of the one or more classes belong to a superclass. 

1 8. (original) The method of Claim 7, further including the step of invoking a 

2 routine defined by a superclass that collects data to return to a caller of the 

3 particular class. 

1 9. (original) The method of Claim 8, wherein the step of executing the 

2 executable element includes invoking a routine defined for the superclass. 

1 10. (original) The method of Claim 1, wherein the step of retrieving an 

2 executable element includes retrieving byte code. 

1 11. (original) The method of Claim 1 0, wherein the step of retrieving byte code 

2 includes retrieving Java byte code. 

1 12. (original) The method of Claim 1 , wherein the step of retrieving an 

2 executable element includes a first computer system retrieving byte code 

3 transmitted via a local area network fi"om a second computer system. 

1 13. (currently amended) A computer-readable medium carrying one or more 

2 sequences of one or more instructions for securely invoking an access control 
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3 function, the one or more sequences of one or more instructions including 

4 instructions which, when executed by one or more processors, cause the one or 

5 more processors to perform the steps of: 

6 receiving a digital signature for the access control function; 

7 generating a mapping of the access control function to the digital signature; 

8 determining that the digital signature is mapped to the access control function 

9 based on the mapping when execution of the access control function is 

10 requested; 

1 1 generating a digital signature for a retrieved executable element: 

1 2 determining whether an the executable element matches the access control 

1 3 function bas e d on th e by comparing the digital signature of the executable 

14 element and the digital signature for the access control function ; 

1 5 executing the executable element only when the executable element matches the 

16 access control function; and 

1 7 wherein a particular class defines an implementation of the access control 

18 function; and 

19 returning data to a caller of the executable element after executing the executable 

20 element. 

21 wh e r e in the comput e r r e adabl e m e dium furth e r includ e s s e qu e nc e s of instructions 

22 for p e rforming th e st e p of d e t e cting that an acc e ss control e v e nt has 

23 occurr e d; and 

24 r e tri e ving th e e x e cutabl e e l e ment in r e spons e to d e t e cting that th e e v e nt has 

25 occurr e d. 

1 14. (previously amended) The computer-readable medium of Claim 13, 
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2 wherein the step of receiving a digital signature includes the step of receiving a 

3 digital signature for the particular class; and 

4 wherein the step of generating a mapping includes generating a mapping between 

5 the particular class and the digital signature. 

1 15. (original) The computer- readable medium of Claim 13, 

2 wherein the computer-readable medium further includes sequences of instructions 

3 for performing the step of detecting that an access control event has 

4 occurred; and 

5 retrieving the executable element in response to detecting that the event has 

6 occurred. 

1 1 6. (original) The computer-readable medium of Claim 1 5, 

2 wherein the computer-readable medium further includes sequences of instructions 

3 for performing the steps of: 

4 generating a mapping between the access control event and the access 

5 control function; 

6 determining that the access control event is mapped to the access control 

7 function; and 

8 wherein the step of retrieving the executable element is performed in response to 

9 determining that the access control event is mapped to the access control 
10 function. 

1 17. (currently amended) The computer-readable medium of Claim i€ 13, wherein 

2 the step of returning data fiarther includesiftg sequences of instructions for 

3 performing the step of the executable element returning name- value pairs. 
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1 18. (currently amended) The computer-readable medium of Claim 4^ 13, wherein 

2 the step of returning data th e e x e cutable el e m e nt r e turning nam e valu e pairs 

3 includes the executable element returning a hash table that contains the name- 

4 value pairs. 

1 19. (original) The computer-readable medium of Claim 13, wherein the 

2 computer-readable medium further includes sequences of instructions for 

3 performing the steps of: 

4 generating a mapping of a plurality of access control functions to digital 

5 signatures, wherein the plurality of access control functions include the 

6 access control function, wherein one or more classes define an 

7 implementation for each of the plurality of access control functions; and 

8 wherein each of the one or more classes belong to a superclass. 

1 20. (original) The computer-readable medium of Claim 19, further including 

2 sequences of instructions for performing the step of invoking a routine defined by 

3 a superclass that collects data to return to a caller of the particular class. 

1 21 . (original) The computer-readable medium of Claim 20, wherein the step of 

2 executing the executable element includes invoking a routine defined for the 

3 superclass. 

1 22. (original) The computer-readable medium of Claim 13, wherein the step of 

2 retrieving an executable element includes retrieving byte code. 

1 23. (original) The computer-readable medium of Claim 22, wherein the step of 

2 retrieving byte code includes retrieving Java byte code. 
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1 24. (original) The computer-readable medium of Claim 13, wherein the step of 

2 retrieving an executable element includes a first computer system retrieving byte 

3 code transmitted via a local area network from a second computer system. 

1 25. (currently amended) An access control system, comprising: 

2 a processor; 

3 a memory coupled to the processor; 

4 a first mapping that maps each of a set of access control functions to a digital 

5 signature of that access control function; 

6 the processor configured to retrieve an executable element in response to a 

7 request to execute a first access control fiinction; 

8 the processor configured to generate a digital signature for a retrieved executable 

9 element: 

10 the processor configured to determine whether the executable element matches 

11 the access control fianction bas e d on the by comparing the digital signature 

12 of the executable element and the digital signature for the access control 

13 function ; 

14 the processor configured to determine whether the executable element matches 

15 the first access control function based on the digital signature; 

16 the processor configured to execute the executable element when the executable 

1 7 element matches the first access control Sanction; and 

18 wherein the set of access control functions are each implemented in a class; and 

19 the processor configured to retum data to a caller of the executable element after 

20 executing the executable element. 

21 th e proc e ssor configur e d to detect that an acc e ss control e v e nt has occurred; and 
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22 tho processor configur e d to r e tri e v e th e e x e cutabl e e l e m e nt in r e spons e to 

23 d e t e cting that th e e vent has occurr e d. 

1 26. (original) The access control system of Claim 25, 

2 wherein the first mapping maps a class implementing one of the set of access 

3 control functions to a digital signature. 

1 27. (original) The access control system of Claim 25, further comprising: 

2 the processor configured to detect that an access control event has occurred; and 

3 the processor configured to retrieve the executable element in response to 

4 detecting that the event has occurred. 

1 28. (original) The access control system of Claim 27, further comprising: 

2 the processor configured to generate a mapping between the access control event 

3 and the access control function; 

4 the processor configured to determine that the access control event is mapped to 

5 the access control function; and 

6 the processor configured to retrieve the executable element in response to 

7 determining that the access control event is mapped to the access control 

8 function. 

1 29. (currently amended) The access control system of Claim 2% 25, wherein the 

2 executable element returns name- value pairs as data . 

1 30. (currently amended) The access control system of Claim 29 25, wherein the 

2 executable element returns a hash table as data that contains the name-value pairs. 

1 31. (original) The access control system of Claim 25, 

2 wherein the processor is configured to generate a mapping of a plurality of access 

3 control functions to digital signatures; 
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4 wherein the plurahty of access control functions include the access control 

5 function, wherein one or more classes define an implementation for each 

6 of the plurality of access control functions; and 

7 wherein each of the one or more classes belong to a superclass. 

1 32. (original) The access control system of Claim 3 1 , further comprising said 

2 processor configured to invoke a routine defined by a superclass that collects data 

3 to return to a caller of the particular class. 

1 33. (original) The access control system of Claim 32, wherein said processor is 

2 configured to execute the executable element by invoking a routine defined for 

3 the superclass. 

1 34. (original) The access control system of Claim 33, wherein said executable 

2 element is byte code. 

1 35. (original) The access control system of Claim 34, wherein said byte code 

2 includes Java byte code. 

1 36. (original) The access control system of Claim 35, wherein said processor is 

2 configure to retrieve an executable element by retrieving byte code transmitted 

3 via a local area network. 
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